622300+ entries in 0.361s
ThickAsThieves: ben_vulpes and how often does audit result in actual project being started from scratch
to suit your
team/current
tech?
ben_vulpes: how else am i
to know what i'm getting into?
nubbins`: i
think i'm going
to start only quoting
the winkdex for
the btc/usd price
ben_vulpes: <ThickAsThieves> i often
think about
that, how
the hell can someone who cannot/willnot read code, ever be
the steward of a software project safely? << for legacy projects i generally angle for an audit phase.
ThickAsThieves: like
the guy who made
that coin
that instamined, and we discovered block reward just resets
ThickAsThieves: TomServo, my stance would be
that any attempt
to see how hard a wallet is would be a start
ThickAsThieves: like was said earlier, <+mats_cd03> i delay
the battles i cannot win and fight with haste otherwise
ThickAsThieves: kinda funny
tho, some people will say Armory, no, Electrum, no Mycelium, no Core, but none are audited anywhere
jurov: no one will risk
their rep over C++ mess
nubbins`: who you gonna
trust
to audit it?
ThickAsThieves: is
there a
trustworthy wot-signed document of an auditor saying any version of bitcoin is safe?
jurov: ThickAsThieves huh?
they do have people able
to read
the code. only currently
they spew new one instead
ThickAsThieves: all it
takes is one rogue programmer
to plant a shellshock, no?
bounce: plenty money hiring people
to do
the reading and lots of lawyers
to paper over
the obvious problems with
threats of large fines
ThickAsThieves: i often
think about
that, how
the hell can someone who cannot/willnot read code, ever be
the steward of a software project safely?
jurov: redhat would be in a position
to do it..but perhaps
their current bezzle makes better $$$
bounce: it's a bit like... well, calling everyone who does anything wrong a "wrongdoer", regardless of
the details of
the crime. do
that consistently and
there's no discernible difference between a mass murderer and a petty
thief, or even someone
telling you you left
the keys in
the door and don't forget
to close up, guv.
ThickAsThieves: if i were
to attempt articulating it, I'd say it's a focus on convenience over robustness, ignorance over understanding, etc
jurov: is anyone willing
to pay "we have read
the code for you" kind of security?
bounce: now it would help if we can properly articulate what ails us. but we can't, because
the
terminology has been deliberately confused and watered down and broadened and stretched (by
the industry) so as
to spread FUD more effectively
mats_cd03: i delay
the battles i cannot win and fight with haste otherwise
bounce: well,
that's
the problem innit? people still pay for security (see size of computer security industry) yet are getting none, or at least much less
than
they should be getting
ThickAsThieves: i apologize for such a broad stroke if
they seemed otherwise
ThickAsThieves: none of my comments on
the state of security were meant
to comment on how bounce does security or about what bounce
thinks about security
ThickAsThieves: i was only pointing out
that
the illusion of security most people hold is long gone
mike_c: meet behind
the school at noon
bounce: well, who were you
talking
to
then?
bounce: the "anyway" did
that pretty much, yeah
ThickAsThieves: just because i suggets nothing is "really secure" does not mean
that I am saying security is a waste of
time
ThickAsThieves: well it's relevant, no? You are behaving
the same as what pisses you off. Broadening definitions
to suit your degree of being offended.
chetty: or,
the inevitable is
the only
thing worth fighting
bounce: the deeper problem with
the
terminology is
that it no longer means anything useful and so gets used like
the smurfs use smurfing. and lo and behold,
the computer security is just about as useful.
bounce: tsunamis have happened for aeons. yet we like forewarning and protection. youse a bunch of nimby sayers, mats says. no fighting
the inevitable!
mats_cd03: this nonversation about definitions was old
twenty years past
bounce: it'll be reviled all
the same. you can read?
therefore you are a hacker.
therefore you lose your fourth amendment rights.
bounce: we're already
there. "hacker" means "cyberbogeyman" now.
ThickAsThieves: i
think you need
to brace yourself for
the broader definition of hacking
bounce: since
they clearly did it...
ThickAsThieves: technicality really, he never says
the hackers need
to hack
ThickAsThieves: also, i'm okay with "hacker" meaning someone who can hack shit
together
to do rare shit
kakobrekla: ok so: which animal
typed
this: <iNanca> cndjkfhuasdy
bounce: looking at cameras makes you a "hacker" now. what does
that
these peeps make?
they SCRIPTED
the looking at security cameras. surely
that's EXCEPTIONAL SKILL and so
they're not merely HACKERS,
they're VERY DANGEROUS UBERHACKERS
assbot: Huobi Sends $400k
to Wrong User Accounts
rithm: those who operate public facing embedded
type webservers
that might call on shell scripts and
the like
assbot: ShellShock exploited in
the wild: kernel exploit with CnC component | Hacker News
rithm: that's shellshock in
the wild apparently
assbot: Ok, shits real. Its in
the wild... src:162.253.66.76
rithm: maybe... don't
try kids
rithm: ThickAsThieves if you could finish
that sentence with "don't
try" it would be complete
kakobrekla: mps
theory is scammers are unable
to accumulate wealth
mats_cd03: is it a net loss -- scammers accumulating wealth, and
the stupid losing
theirs?
ThickAsThieves: sure, i'm not here
to defend paypal, but i can appreciate
the ad
ThickAsThieves: it's not a real man, it's face morph of all
the men in
their
target audience
mats_cd03: whats
the relation between kindergarten and contest charges?
ThickAsThieves: the Contest Charges button is broken on my credit card
too
kakobrekla: lucky it didnt blow your house up... cause you know,
these
things happen.
ThickAsThieves: also Lowes subcontracts
tyhe work of course, and
then
this sub subbed it out again
chetty: haha nah
thats not a broad brush ....
mats_cd03: but every contractor in
the world is a miserable, lying
thief.
mats_cd03: i don't want
to paint a broad brush here,
ThickAsThieves: so i paid
to have Lowes install a garage door on a rental property, 2mos later it finally happens (skipping some headache details) and
they dont actually fully install it and
they show me a forged report with my signature
mats_cd03: the original study is about premature ejaculation, but
the abstract doesnt describe
the definition.
assbot: BtcAlpha.com F.MPIF
Tracker estimated NAV per share: 0.00021650 B (Total: 473.44 B). Delta: -1.08 B. Last
trade for F.MPIF on MPEX was at 0.00020614 BTC [-]
cazalla: i
think i read somewhere before fatties last longer because lower
test means
they're more inclined
to
think about
the womans pleasure
ThickAsThieves: "More belly fat, scientists say, means a man has more estradiol, a female sex hormone
that helps
to inhibit orgasm."
ThickAsThieves: such lol "So let’s say a guy has sex 100
times annually. If he has a belly, he’s going
to spend approximately eight hours — an entire work day — more per year penetrating his lover
than if he has a six-pack.
That’s a substantial amount of
time."
assbot: Science Confirms
The Bigger
The Belly,
The Better
The Lover / Queerty
mats_cd03: there is something special about morning coffee
time after a long hiatus with
tea as a substitute
mats_cd03: i usually have
to pair it with meat
to even be consumable
mats_cd03: theres something about most cheese
that makes me retch
mats_cd03: i have finally discovered a cheese
that i find palatable: pepper jack.
ThickAsThieves: wouldnt
the net be a better place if all used same standard?
ThickAsThieves: ;;later
tell
TheNewDeal <TheNewDeal> any response on
that foia yet? /// since youve been singling me out, I wanna clear up
that, while I did email
them an inquiry long ago, I did not personally submit a FOIA request. I simply know of a couple netizens
that did. You can expect news
to spread fast once(if) it happens.
☟︎ jurov: emphasis
theirs. dis gon b gud.